ECC is more modern, and can be more secure. The real benefit is that you can have much shorter keys with ECC to get an equivalent security compared to RSA. Also implementing ECC in software or hardware is much more efficient which provides better performance.
I moved to ECC for my ClearPass years ago, and have not really seen issues. All (somewhat) modern devices tend to support ECC certificates.
Just make sure that you disable the HTTPS-RSA certificate in ClearPass if you install an ECC certificate. Just one should be enabled, RSA or ECC.
------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check
https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
------------------------------
Original Message:
Sent: Sep 10, 2024 06:36 AM
From: ahollifield
Subject: Which ClearPass HTTPS certificate should I choose between ECC and RSA?
Depends. Is your HTTP certificate elliptical curve or RSA? ECC is more secure.
Original Message:
Sent: Sep 09, 2024 11:20 PM
From: tt23
Subject: Which ClearPass HTTPS certificate should I choose between ECC and RSA?
Hi All,
Which HTTPS certificate type should I use on ClearPass between ECC and RSA?